Merge branch 'mt3571-1073-jwt-verify'

2024-11-02 14:11:02 +01:00 · 2021-02-09 14:15:12 +00:00 · 2021-02-09 14:15:12 +00:00 · 14d5069c6e
commit 14d5069c6e
parent 3ae2e2e2c8 9fdd55c5c6
3 changed files with 30 additions and 20 deletions
--- a/src/core/lib/JWT.mjs
+++ b/src/core/lib/JWT.mjs
@ -0,0 +1,24 @@
+/**
+ * JWT resources
+ *
+ * @author mt3571 [mt3571@protonmail.com]
+ * @copyright Crown Copyright 2020
+ * @license Apache-2.0
+ */
+
+
+/**
+ * List of the JWT algorithms that can be used
+ */
+export const JWT_ALGORITHMS = [
+    "HS256",
+    "HS384",
+    "HS512",
+    "RS256",
+    "RS384",
+    "RS512",
+    "ES256",
+    "ES384",
+    "ES512",
+    "None"
+];
--- a/src/core/operations/JWTSign.mjs
+++ b/src/core/operations/JWTSign.mjs
@ -3,10 +3,11 @@
 * @copyright Crown Copyright 2018
 * @license Apache-2.0
 */
-
 import Operation from "../Operation.mjs";
 import jwt from "jsonwebtoken";
 import OperationError from "../errors/OperationError.mjs";
+import {JWT_ALGORITHMS} from "../lib/JWT.mjs";
+

 /**
 * JWT Sign operation
@ -34,18 +35,7 @@ class JWTSign extends Operation {
            {
                name: "Signing algorithm",
                type: "option",
-                value: [
-                    "HS256",
-                    "HS384",
-                    "HS512",
-                    "RS256",
-                    "RS384",
-                    "RS512",
-                    "ES256",
-                    "ES384",
-                    "ES512",
-                    "None"
-                ]
+                value: JWT_ALGORITHMS
            }
        ];
    }
--- a/src/core/operations/JWTVerify.mjs
+++ b/src/core/operations/JWTVerify.mjs
@ -3,10 +3,11 @@
 * @copyright Crown Copyright 2018
 * @license Apache-2.0
 */
-
 import Operation from "../Operation.mjs";
 import jwt from "jsonwebtoken";
 import OperationError from "../errors/OperationError.mjs";
+import {JWT_ALGORITHMS} from "../lib/JWT.mjs";
+

 /**
 * JWT Verify operation
@ -43,12 +44,7 @@ class JWTVerify extends Operation {
        const [key] = args;

        try {
-            const verified = jwt.verify(input, key, { algorithms: [
-                "HS256",
-                "HS384",
-                "HS512",
-                "none"
-            ]});
+            const verified = jwt.verify(input, key, { algorithms: JWT_ALGORITHMS });

            if (Object.prototype.hasOwnProperty.call(verified, "name") && verified.name === "JsonWebTokenError") {
                throw new OperationError(verified.message);